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What is claimed is: 



1 . A method of encrypting an electronic file in an application program running 
in a suitable environment require^ for operating the program, comprising the steps of: 
a) issuing a change document command to act upon the file; 
intercepting the change document command; 
acquiring an encryption key value; 

encrypting the file using the encryption key value to create an encrypted 



b) 
c) 
d) 

file; and 



e) completing the jbhange document command by performing the change 
yj 10 document command upon ttfe encrypted file/nsteadof the file. 

2. A method as i/ecited in claim f\ , whe&in step c) further comprises the 
steps of determining if the file should be-eifep/pted, and ifnot, then skipping step d), and 
if so, then: 

retrieving an encryption key name associated with the file; and 
retrieving the encryption key value associated with the encryption key name. 

3. A methoo as recited in claim 2, wherein there are plural encryption key 
values and at least one encryption key vstucfassociated with a user. 

4. A method as recited in claim 3, comprising the further steps of: 
requiring the user to submit to an access authentication step; and 



20 if the access 

steps c) and d), but 



user. 



authentication step does not authenticate the user, then skipping 
if the access authentication step does authenticate the user, then 



retrieving the encry Dtion key value associated with the encryption key name and the 
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5. A method as recited in clarm 1 , wherein steps steps c) and d) further 
comprise the steps of: 



encryption key, an algorithm identifier 



selecting an algorithm to use witt) the file from one of a plurality of encryption 
algorithms; 

selecting an encrpytion key with $ key value; 
generating a file identifier from t\ 
associated with the algorithm and a datfa identifier associated with the file; 
adding the file identifier to the file; and 
using the key value and the algorithm to encrypt the file. 

6. A method as recited in claim 5, coprlprising\he further steps of: 
selecting the file from within thp contends of a secori<J file that is larger than the 

file. 

7. A method as recited in/ claim 6,fcompristfg the^uctber_steps of: 
creating a third file from the second fiLe_wherein the third file contains the 

encrypted file and the portion of the second file that does not include the file. 

8. A method as reciteg in claim 7, wherein the encrypted file is located in a 
container. 

9. A method as recitefd in claim 5, wherein the algorithm is selected from the 
plurality of encryption algorithm|s accordingJo-a preselected criteria. 

10. A method as rec/ted in claim 5, wherein the algorithm is selected from the 




plurality of encryption algorithms according to a preselected algorithm. 

11. A method as recited in claim 5, wherein the file identifier is inserted into 



the file according to a prese 



ected criteria. 
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12. A method as recited in claim 5 f wherein the file identifier is inserted into 
the file according to a preselected algorithrp^ 

13. A method as recited in claim 5, comprising the further step of: 
invoking an option to initrate a virus scan program. 

14. A method as recited in claim 5, comprising the further step of: 



running a virus scan prog 
1 5. A method of decrypfti 



am on the file before it is encrypted, 
ting an electronic file that is to be opened in an 
application program running in a suitable environment required for operating the 
program, comprising the steps of: 

issuing an open doc jment command to actlupon the file; 



a) 
b) 
c) 
d) 

file; and 
e) 



intercepting the open 



retrieving a decryption key valu i 



decrypting the file us 



document 




ng the deoryptiqpn key value ic^cmate-an unencrypted 



completing the open 
document command upon the une 
16. A method as recited 



document command by performing the open 
ncrypted file instead of the file. 



in claim 15, wherein step c) further comprises the 
steps of determining if the file shoLld be decrypted, and if not, then skipping step d), and 
if so, then: 

retrieving a decryption key name associated with the file; and 
retrieving the decryption key value associated with the decryption key name. 
17. A method as recited in claim 16, wherein there are plural decryption key 
values and at least one decryption key value associated with a user. 
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18. A method as reci:ed in claim 17, comprising the further steps of: 
requiring the user to submit to arfacc^ss authentication step; and 

ion step does not authenticate the user, then skipping 
authentication step does authenticate the user, then 



5 retrieving the decryption key va(ue associated with the decryption key name and the 
user. 

19. A method as recitjbd in claim 15, wherein steps steps c) and d) further 
comprise the steps of: 

selecting an algorithm t<f> use with the file/forhs^ne of a plurality of encryption 
10 algorithms; 

inputting a decrpytion kfey with a key/ 

validating the decryptiop key value ; 
identifier; and 

using the key value antl the algorithmlo decrypt the file. 




I je associated with a file 



20. A method as recited in claim 19, comprising the further step of: 
invoking an option to initiate a virus scan program. 

21 . A method as recited in claim19, comprising the further step of: 



running a virus scan 
22. A method for 



20 encryption algorithms, corr prising the steps of: 



selecting an algorith 
algorithms; 

selecting an encrp 



program on the-decrypted file. 

bncrypting and decrypting a file with one of a plurality of 



m to use with the file from the plurality of encryption 



ion key with a key value; 
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generating a file identifier from the encryption key, an algorithm identifier 
associated with the algorithmtand a data identifier associated with the file; 
adding the file identifiento the file; 

using the key value and tjie algorithm to encrypt the file and generate an 
encrypted file; 

inputting a decryption key With a decryption key value; 
validating the decryption k$y value with the key value associated with the file 
identifier; 

using the key value and thd algorithm tef decrypt the file. 

in claira^rcomprising the further steps of: 



e with an ei/drypted data identifier during 



10 23. A method as recited 

uniquely identifying the enqrpyted fi 
encrpytion; and 

testing the encrypted datalSdentifier\aftenefecrpytion by regenerating the 
encrypted data identifier and ascertaining that they are the same. 
15 24. A method as recitejd in claim_22^comprising the further steps of: 

selecting the file from witpin the contents of a second file that is larger than the 

file. 

25. A method as recijied in claim 24, wherein the encrypted file is placed in a 
container. 

20 26. A method as recited in claim 26 L comprising the further step of: 

creating a third file from the second file wherein the third file contains the 
container and the portion of the second file that does not include the file. 
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27. A method as recited in claim 26, wherein the container is represented in 
the third file. 

28. A method as recit&d in claim 27, wherein the decryption is initiated with 
whatever method is appropriated the way the file is represented in the third file. 

5 29. A method as recited in claim 27, wherein the second file is recreated from 

the third file after the file is decwpted. 

30. A method as recjfed in claim 22, wherein the file is located in a document 
or image repository. 

31 . A method as r^bited in claim 22, comprising the further steps of: 
10 sending the encrypted file from a first person to a second person over the 

Internet in an e-mail message. ^ 

32. A method as/recited inyclaim 3jl , wherein the first person is the same as 
the second person. 

33. A method aJs recited fin claim 22, wherein the algorithm is selected from 
15 the plurality of encryption algorithm&^ccording"to~a preselected criteria. 

34. A method as recited in claim 22, wherein the algorithm is selected from 
the plurality of encryption algorithms accordinglo a preselected algorithm. 

35. A method as recited in claim 22, wherein a portion of the file identifier is 
encrypted before it is inserted into the file. 

20 36. A methodl as recited in claim 35, comprising the further step of decrypting 

a portion of the file identifier before the decryption key value is validated. 

37. A method as recited in claim 36, wherein all of the file identifier is 
encrypted before the decryption key value is validated. 
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38. A method as recited in claim 22, wherein the file identifier is inserted into 
the file according to a preselJcted criteria? 

39. A method as re :ited in claim 22, wherein the file identifier is inserted into 
the file according to a preselected algorithfnT 

40. A method as re :ited in claim 22, comprising the further step of: 
invoking an option to initiate a virus scan program. 

41 . A method as rec ited in claim 22, comprising the further step of: 
running a virus scan program on the file before it is encrypted. 

42. A method as recited in claim 29^comprising the further step of: 
running a virus scan program on the /econd^jle after it is recreated. 

43. A method for er crypting a fi|e with on^ \f a plurality of encryption 
algorithms, comprising the stops of: 

selecting an algorithm to use withlthe fije fromHj^plurality^of^ncryption 
algorithms; I 

selecting an encrpyti<Jn key with a key value; 

generating a file identifier from the encryption key, an algorithm identifier 
associated with the algorithpi and a data identifier associated with the file; 
adding the file identifier to the file; and 

using the key value/ and the algorithm to encrypt the file and generate an 
encrypted file. 

recited in claim ^^comprising the further step of: 
the encrpyted file with an encrypted data identifier 



44. A method av> 
uniquely identifying 



LA-76712.5 



22 



# 



Patent 
240/218 



45. A method for decrypting an encrypted file with one of a plurality of 
encryption algorithms, comprising the steps of: 

selecting an algorithm to use with thjef^encrypted file from the plurality of 
encryption algorithms; 

inputting a decryption key^ith a decryption key value; 
validating the decryptipfi key value^itF^ value associated with a file 
identifier that was added 16 a file during kn encryption process that created the 
encrypted file; and 

using the k^y value and the algorithm to aecTypTth^encrypted file. 

46. ,/ymethod as recited in claim ^/Comprising the further step of: 
testipf£j an encrypted data identifier that is used to uniquely identify the encrypted 

file during the encryption process by regenerating the encrypted data identifier and 
ascertaining that they are the same. 
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